Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
File: 8o-houRJGJHBmw8QsIb2VZhPWHk.mft (raw, json)
Hash identifier: 75DMt4qRqZzST1K5kseYaCJX+61hTkx3Vv0SAWUZwOU=
Subject key identifier: A6:43:E8:9E:92:6D:B3:CA:CF:6F:B9:21:85:3B:0F:5C:39:D2:75:B3
Authority key identifier: F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
Certificate issuer: /CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Certificate serial: 019A71B7FD24E359D337EADBE7ED1D4FAB77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
Manifest number: 0B70
Signing time: Tue 11 Nov 2025 07:01:14 +0000
Manifest this update: Tue 11 Nov 2025 07:01:14 +0000
Manifest next update: Wed 12 Nov 2025 07:01:14 +0000
Files and hashes: 1: 8o-houRJGJHBmw8QsIb2VZhPWHk.crl (hash: j/FJQiwJ6ISBhYWY15kFnGU76OULi+6/2hKnpzKYrm8=)
2: IAJBt24rgV_us-DgHGqft-brDOM.roa (hash: EYG4N8j/B/VmDjgrJQXF6wEvv1LkIhmvGFmYVI9Ke7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:fd:24:e3:59:d3:37:ea:db:e7:ed:1d:4f:ab:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Validity
Not Before: Nov 11 07:01:14 2025 GMT
Not After : Nov 12 07:01:14 2025 GMT
Subject: CN=a643e89e926db3cacf6fb921853b0f5c39d275b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c7:0e:07:ea:c1:d8:b6:a1:4f:f2:98:80:9a:
25:c2:fa:e0:b4:a1:e9:b3:d1:63:88:a6:4a:86:1d:
b7:ac:db:24:89:ff:3a:da:26:ad:45:81:b2:49:ab:
05:e2:40:20:84:16:c6:a6:8e:d5:07:e0:47:1a:1a:
00:8a:9c:6b:22:c3:cc:5e:d5:41:9a:86:23:a9:0f:
32:23:a6:6e:1b:5f:0d:31:c9:03:91:b5:ff:b8:33:
dc:3d:c2:de:1c:36:e6:73:73:1f:15:3c:36:66:1a:
7d:b8:a9:b9:1e:c6:8c:cc:5f:27:57:7a:5b:f6:dc:
95:58:9e:7f:62:4b:1c:d7:e3:a2:25:3b:92:1c:92:
3f:d8:04:02:7f:c6:ea:be:72:08:3f:6b:ad:e3:7f:
7f:52:2d:19:dd:81:5b:b3:38:ba:51:51:14:99:06:
40:5e:1c:5f:ad:ff:72:0a:48:17:04:14:2f:f8:3e:
3e:f2:f3:77:47:07:6b:b1:cb:c9:ec:50:eb:60:51:
e7:5f:c2:1d:1b:20:38:2f:9b:34:e1:8e:80:0a:6d:
8a:a2:60:e2:85:09:b0:d4:d2:17:c7:a5:ac:f6:1e:
8a:8c:0c:95:1b:22:e3:68:67:03:62:b2:3a:8e:8a:
69:52:fa:00:9a:6b:be:7d:d1:4e:5c:76:2e:78:97:
6d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:43:E8:9E:92:6D:B3:CA:CF:6F:B9:21:85:3B:0F:5C:39:D2:75:B3
X509v3 Authority Key Identifier:
keyid:F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:c5:25:c3:63:e8:89:f4:a8:db:0d:2d:d2:d5:e6:f3:9c:0b:
c6:77:23:a8:64:17:9e:6c:af:7b:ec:30:90:55:f0:bf:0c:66:
fb:cb:af:27:36:a5:e1:d6:7c:58:e8:54:4c:20:90:89:67:d0:
a8:89:77:53:b9:55:1f:c4:3e:6e:1a:3f:22:74:aa:6c:93:1c:
02:1c:99:63:c9:65:5d:19:da:da:dc:b9:2a:7e:a9:d7:74:5e:
39:1d:fc:b5:f8:46:69:9b:0d:54:76:7e:df:1e:65:ce:71:ca:
a4:08:29:19:ee:68:db:1e:c7:25:87:8b:98:1e:e2:61:a8:53:
2b:0f:5c:b8:ad:2d:93:66:74:a5:53:ce:10:5e:c4:8e:91:4b:
14:3b:f5:33:40:98:64:57:71:15:51:2c:c9:3e:9e:3e:21:f1:
fe:93:b2:e4:94:78:5b:35:25:81:4c:07:65:04:ab:4f:7c:49:
72:a7:bb:b7:b0:b2:2f:01:aa:0c:1a:16:01:55:b9:9b:49:a2:
fb:b1:d7:48:48:a3:2e:97:3d:36:a7:33:b6:3d:2d:73:1c:de:
91:1f:96:59:63:96:02:1f:69:dd:97:e9:96:d0:f0:05:af:54:
46:ec:e8:4e:53:48:65:ec:03:57:3b:cc:ff:d0:0b:e4:84:c4:
8f:eb:aa:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:22 2025 by rpki-client